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METHOD AND APPARATUS FOR PROVIDING ELECTRONIC MESSAGE 

AUTHENTICATION 

RELATED CO-PENDING APPLICATION 
[0001] This is a continuation-in-part of U.S. Patent Application entitled METHOD AND 

APPARATUS FOR SECURELY PROVIDING IDENTIFICATION INFORMATION USING 

TRANSLUCENT E)ENTIFICATION MEMBER, having serial no. 10/748,523, filed on 

December 30, 2003, having as inventors Chiviendacz et al. and owned by instant Assignee. 

FIELD OF THE INVENTION 
[0002] The invention relates generally to methods and apparatus for providing 

authentication of an electronic message sending entity, and more particularly to methods and 

apparatus that employ soft tokens or hard tokens for authenticating senders of electronic 

messages such as email. 

BACKGROUND OF THE INVENTION 
[0003] Ensuring that a sent email message or other electronic message has been sent by a 

sender that can be trusted, also referred to as being authentic, helps ensure against theft of 
important information by unscrupulous parties and can help limit spam and phishing. Phishing is 
a form of Intemet scam that usually involves the mass sending of emails which appear to be from 
a legitimate organization such as a bank or other financial institution or other organization. 
These emails often direct the recipient to a fraudulent website or form where he or she is tricked 
into divulging personal or financial information. An altemative phishing scam may not ask for 
such information but, upon entering the URL, execute a download of a keystroke-logging 
program that lets the phisher harvest information from the recipient's machine. The information 
can then be used for identity theft and fraud. 

[0004] Phishing attacks can be costly and can drain a company's resources since, for 

example a large number of attacks can be run against target companies in large volumes and 
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billions of phishing messages pass through filtering systems that can slow down email delivery, 
use up valuable processing times of servers and can ultimately result in the loss of important 
financial data to unscrupulous parties. 

[0005] Several solutions are known that attempt to address this problem. Because 

phishing attacks often begin with large volumes of email sent fi-om a forged sending address, 
efforts to reduce spam email may be somewhat effective in reducing the number of phishing 
attacks. For example, one method referred to as Sender Policy Framework, an originator of a 
message or originator domain publishes in a directory or other suitable form legitimate sending 
computer addresses which are verified by receiving message transfer agents. The message 
transfer agent may verify a received message via a DNS server (domain name server). 
However, this technique can require widespread adoption of SPF-enabled message transfer 
agents which can potentially be costly to implement and deploy. 

[0006] Another technique referred to as Coordinated Spam Reduction Initiative again 

requires originators in an originator domain to publish legitimate sending computer addresses 
which are verified by receiving message transfer agents in a relatively similar manner as 
described above. 

[0007] Another technique requires domains to digitally sign email which is verified by 

the receiving message transfer agent via DNS servers. Again, this can require the widespread 
adoption of modified versions of message transfer agents. 

[0008] Another technique uses the S/MIME protocol wherein sending individuals or 

domains digitally sign emails that are verified by receiving incoming message transfer agents or 
user email clients. This can require special email client features or recipient message transfer 
agents that are not currently supported in web based email clients. 
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[0009] Another technique employs a secret images that are shared between a sender and 

a recipient. As understood, a personalized image is sent by a user to an authentication server. 
The server stores the recipient sent image. The authentication server may then send the 
personalized image to the recipient with an email and the user seeing the image recognizes that it 
is the one he sent. Also, during logon to a site, the server may include the image in the logon 
page so that a user trusts the login page when the user sees their personalized image (see e.g., 
www.passmarksecurity.com). Among other drawbacks, this system appears to use the same 
image for multiple logins until the shared image is changed and may require the recipient to 
choose and send the image to a sending server. 

[0010] In addition, other systems are known which attempt to provide, instead of sender 

authentication, recipient authentication. For example, U.S. Patent No. 5,712,627 discloses, 
among other things, an issued identification card that has indicum at one of the addressable 
positions on an assigned card. The card may have rows and columns with different numbers, 
characters or symbols that are addressable by the rows and columns. To determine whether a 
person seeking access to data is authorized to obtain requested access, the identification card is 
distributed to authorized users. A requesting person seeking access provides the indicia at one or 
more addressable positions on the card as specified by a security system. To notify the person 
which indicum to enter and send back, the system selects coordinate indicia known to be present 
on a particular card. The recipient must then send back the indicia located at the address sent by 
the security system. If the indicia matches that assigned to the person seeking access then access 
is granted. However, such systems do not resolve the problem with respect to phishing since the 
system provides authentication of a receiver and not a sender and requests that a person seeking 
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access identify themselves to the system and the system requires entry and sending by the user of 
information located on the security card. 

[0011] Other authentication systems are also known that have been employed, for 

example, in the military, numeral cipher/authentication systems have been used that employ 
cards that are held by a sender and recipient. A transmission is made secure for example by 
using a challenge and reply authentication scheme. A sender of an electronic transmission for 
example may use the card and randomly select a letter from a row and column grid and transmit 
the letter. For a reply, the first letter of the challenge in the column is found and the second letter 
in the line indicated by the first letter is then communicated back. As such, the sender can then 
get confirmation. However, this also requires a reply by the receiver. 

[0012] Another technique also uses a card that includes rows and columns of information 

on both the sender and receiver side, however, this transmission authentication scheme is used to 
authenticate transmissions. For example during transmission authentication, columns of 
transmission authentication diagraphs are located on the back of a cipher table and used to 
authenticate a sender. Column assignments are made by a designated representative such as a 
commander of a unit. The colxrnm assignments are known to both the sender and receiver 
apriori. Transmission authentication diagraphs are used only once. The first unused 
authenticator in the assigned column is used and a line is drawn through that authenticator to 
preclude its reuse. Such schemes do not utilize a random selection of information on the card 
and do not utiUze the sending of coordinate information since the column information is known 
apriori. As such, only the authentication information is apparently communicated. If the sender 
sends authentication information and it is valid as determined by the recipient, the recipient 
crosses the authentication information off the card. The next time authentication is required, the 
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next authentication information in the same column is then used. As such, a sequential and non- 
random approach is used. However, if the authentication card of a recipient is lost or obtained 
by an unscrupulous party, they would know how to act as a sender since they know which 
authentication information is next in the column since no random selection is utilized and since 
the card has markings thereon. In this system no coordinate information is sent since the column 
of information used to authenticate a sender is made known apriori to the sender and receiver. In 
addition, if the receiver does not receive the sender's transmission, the synchronization between 
the sender and receiver would be lost which may cause subsequent authentication attempts to 
fail. 

[0013] Also, information security and user identification security are becoming 

increasingly important as technology becomes more sophisticated. For example, multi-factor 
authentication schemes are used in an attempt to thwart hackers or to thwart other inappropriate 
uses of information and user identities. For example, a two factor authentication scheme may 
use information known to a recipient or user such as a password or personal identification 
number (PIN) as well as some type of physical token such as a banking card, credit card, 
password token or other physical token which a user must be in physical possession of in order 
to initiate and complete an on-line transaction. Another level of authentication may include 
biometric authentication that may include the scanning of a fingerprint, eye or other biometric to 
again verify that the user attempting to gain access to a process, device, application or other right 
is in fact the appropriate user. 

[0014] Transaction cards are known that may include for example smart cards, magnetic 

strip-based cards, and other transaction cards that facilitate banking transactions, credit card 
transactions, or any other suitable transactions. As known in the art, a user personal 
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identification number (PIN) is usually required in addition to the possession of a banking card to 
obtain cash from a cash-dispensing machine or to otherwise carry out an online transaction. One 
known multi-factor authentication technique employs the use of a hardware token such as a 
battery operated smart card that displays a periodically changing and seemingly random number 
on a portion of the smart card. When a user wishes to execute a transaction with the smart card, 
for example, the user enters the seemingly random number that changes often. The receiving 
transaction server compares the received code entered by the user as displayed on the smart card 
with a corresponding number generated by a code source generator. If the code entered by the 
user matches the number generated by the code source generator, the transaction is approved and 
the user is granted a particular right such as accessing a bank account, purchasing goods, 
obtaining information, gaining access to a website or other soflAvare application, or any other 
suitable right as desired. However, such hardware tokens can be quite expensive and are battery 
powered thereby requiring changing of the battery and the potential of an electronic malfunction 
due to moisture problems or any other problems related to electronic circuitry. 
[0015] Other smart cards that do not employ such screens typically require a card reader 

that reads, for example, a magnetic strip. This can be a restriction where a user wishes to 
perform an online transaction but is not sitting at a terminal that contains or has access to a 
magnetic strip reader. 

[0016] In an apparently unrelated field, translucent cards are known such as plastic cards 

that contain a semi-transparent picture or pattern that when visually evaluated does not appear to 
connote any particular information. However, when the translucent card is held over a display 
with a corresponding background filter pattem, the combination of the pattern on the card with 
the background pattem on the display screen combine to present a visually recognizable message 
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or word such as the word "sorry" or "you're a winner". These are static messages which are not 
unique to any user and typically include only a single message. Such plastic cards may be used 
for example to see if a holder has won a prize. The card for example may be mailed in the mail 
to members of a population. Those recipients then go to a web page identified on the translucent 
card or otherwise indicated in the maiUng information to see if they have won a prize. However, 
such plastic cards do not provide multi-factor authentication, are not user specific, do not include 
multiple messages and typically include static messages. 

[0017] Accordingly, a need exists for a method and apparatus that overcomes one or 

more of the above problems. 

DETAILED DESCRIPTION OF THE DRAWINGS 
[0018] FIG. 1 is a block diagram illustrating one example of a system for securely 

providing identification information in accordance with one embodiment of the invention; 
[0019] FIG. 2 is flow chart illustrating one example of a method for securely providing 

identification information in accordance with one embodiment of the invention; 
[0020] FIG. 3 is a diagram illustrating a fiirther break down of the method shown in 

FIG. 2; 

[0021] FIG. 4 is a diagram illustrating one example of a secure identification information 

member in accordance with one embodiment of the invention; 

[0022] FIG. 5 is a diagram graphically illustrating one example of a login screen to 

facilitate authentication of a user or for securely providing identification information in 
accordance with one embodiment of the invention; 

[0023] FIG. 6 diagrammatically illustrates one example of a displayed visual filtering 

pattem in accordance with one embodiment of the invention; 
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[0024] FIG. 7 graphically illustrates one example of a visually identified designated 

identifier fi*om one or more obscured identifiers that are located on a translucent identification 
member in accordance with one embodiment of the invention; 

[0025] FIG. 8 is a diagram of a system for securely providing identification information 

in accordance with one embodiment of the invention; 

[0026] FIG. 9 is a block diagram illustrating in more detail one example of a translucent 

identification member issuer in accordance with one embodiment of the invention; 

[0027] FIGS. 10 and 11 illustrate a flowchart showing one example of a method for 

securely providing identification information in accordance with one embodiment of the 

invention; 

[0028] FIG. 12 illustrates one example of a transaction card including a portion 

containing a translucent identification member in accordance with one embodiment of the 

invention; 

[0029] FIG. 13 illustrates another example of a transaction card that contains a 

translucent identification member in accordance with one embodiment of the invention; 

[0030] FIG. 14 is a diagram illustrating one example of a secure identification 

information member in accordance with another embodiment of the invention; 

[0031] FIG. 15 diagrammatically illustrates one example of displayed obscured identifier 

information in accordance with one embodiment to the invention; 

[0032] FIG. 16 is a block diagram illustrating another example of a system for securely 

providing identification information in accordance with one embodiment to the invention; 
[0033] FIG. 17 is a flow chart illustrating one example of a method for securely 

providing identification information in accordance with one embodiment to the invention; 



8 



[0034] FIG. 18 is an illustration representing one example of an article, such as a card, 

that may be used in a method for providing electronic message authentication according to one 
embodiment of the invention; 

[0035] FIG. 19 illustrates one example of a transaction card that includes sender 

authentication information and location coordinate information for use in providing electronic 
message authentication in accordance with one embodiment of the invention; 
[0036] FIG. 20 is a flow chart illustrating one example of a method for providing 

electronic message authentication in accordance with one embodiment of the invention; 
[0037] FIG. 21 is a graphic illustration showing one example of a message with 

appended sender authentication information and location coordinate information in accordance 
with one embodiment of the invention; 

[0038] FIG. 22 is a block diagram illustrating one example of a system for providing 

electronic message authentication in accordance with one embodiment of the invention; and 
[0039] FIG. 23 is a flowchart illustrating one example of a method for providing 

electronic message authentication in accordance with one embodiment of the invention. 

DETAILED DESCRIPTION OF A PREFERRED EMBODIMENT OF THE INVENTION 
[0040] Briefly, a method for providing electronic message authentication employs an 

article (also referred to as a member or token), such as a card, sticker, or any other suitable 
article, that includes sender authentication information and location information, such as row and 
column headings. In one example, each recipient of interest is issued an article that embodies 
sender authentication information that is identifiable by corresponding location information such 
as column and row identifiers. When the sender of an electronic message wants to send a 
message to a recipient of interest, the sender sends the electronic message and both location 
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information and corresponding desired sender authentication information located at the location 
identified by the location information. This includes data representing the location and 
authentication information (such as an index to, a reference to, the location information or 
authentication information itself, or any suitable representation thereof). The recipient may then, 
in one embodiment, look on their article (e.g. card) at the corresponding location and see if the 
sent desired sender authentication information matches the sender authentication information 
located on the article (also referred to as expected sender authentication information). If a match 
occurs, then the recipient trusts the sender of the message. The recipient need not send back any 
information to the sender. As such, a simple card or other article may be used to authenticate a 
sender of a message to thwart phishing, or other sender authentication problems. Other examples 
will be recognized by those of ordinary skill in the art. 

[0041] In addition, a system for providing electronic message authentication is also 

disclosed that carries out the above methodology, and a transaction card is also disclosed that 
includes the location information and sender authentication information thereon in the form of a 
sticker or as part of the transaction card itself In yet another embodiment, the article may be a 
translucent article to allow light to pass therethrough so that a visual filtering pattem and sender 
authentication information may be sent by a sender along with the message. A user may hold up 
the article to a display screen and overlay it on the visual filtering pattem sent by the sender. If 
the resulting sender authentication information matches the results sent in the message, the 
recipient may trust the sender of the message. 

[0042] In another embodiment, an apparatus and method for securely providing 

identification information generates one or more obscured user (e.g., recipient) identifiers for a 
recipient, such as a pluraUty of identifiers that are generated based on user secret data such as a 
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password, personal identification nxunber or other secret or non-secret information or identifiers 
that are not based on user secret data, such as the identifier being randomly generated and then 
associated with the user. In this case, no user-related information is used, but the identifier can 
still identify the user, hi another embodiment, a single obscured identifier may be used, 
[0043] In one embodiment, the method and apparatus generates a translucent 

identification member (TIDM), such as a portion of, or an entire, plastic card, sheet, fihn, or 
other suitable member that has a translucent area that includes the one or more obscured 
identifiers. As used herein, translucent area can also include a transparent area. For example, 
the translucent identification member may be made fi-om transparent or clear sheets, including 
smoked plastic or other suitable coloring with the obscured identifiers (including non-character 
information) printed in ink or otherwise placed thereon or therein. The one or more obscured 
identifiers may be for example one-time authentication identifiers that are unique to a recipient 
of the translucent identification member. As such, the translucent identification member or card 
contains what appears to visually be a random pattem of information. 

[0044] A corresponding visual filtering pattem is also generated for display on a display 

device when the user desires to use the translucent identification member. For example, the 
visual filtering pattern also appears to be random fi'om a visual point of view but when visually 
combined with the one or more obscured identifiers on the translucent identification member, a 
designated one of the one or more obscured identifiers is visually revealed. In one embodiment, 
a user may overlay the translucent identification member over a designated portion of a display 
device or in the designated portion of a display that displays the visual filtering pattem. A 
combination of the visual filtering pattem with the pattem of different obscured identifiers on the 
translucent identification member combine to form a visually revealed single identifier or 
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message from the one or more identifiers. Hence, for example in one embodiment, a seemingly 
random pattern is generated on a screen which helps ensure only a single identifier is exposed 
visually to a user that is viewing the translucent identification member which is overlayed on the 
visual filtering pattern that is being displayed on the display. 

[0045] Accordingly, if desired, a security officer that has access, for example, to a 

translucent identification member issuer may use a package of blank cellophane cards that may 
be used to make the translucent identification members on a local printer. The translucent 
identification members may be printed having translucent color pattern that serves as the one or 
more obscured identifiers, or have other suitable indicia that appears to be semi-random or 
obscured to a user. Use of color or color background may also be used to defeat photocopying 
attacks. It will be recognized that portions of or all fimctions of the translucent identification 
member issuer may be provided through a distribution of providers and networks or through a 
web based service. For example, a recipient may access a TIDM issuance service through a web 
connection and locally print the TJDM or receive the TIDM through the mail. Also, identifiers 
can be provided by one party and sent to another party for printing or manufacturing. Other 
distribution of operations may also be employed as desired. 

[0046] Once a visually revealed identifier is presented to a user, a user enters the visually 

revealed identifier through a user interface where it is compared to an expected identifier. If the 
entered identifier matches the expected identifier, proper authentication is indicated and a 
recipient may be granted access to a device, application, or process or other desired right (or 
submitted data is accepted - e.g. such as a vote). In addition, a list of revoked translucent 
identification members may also be maintained to prevent compromise due to theft or loss of 
translucent identification members. The list may be stored in any suitable location and updated 
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by a service provider, translucent identification member issuer or any suitable entity. Since the 
translucent identification members do not require electronics to generate random numbers, the 
cost of such translucent identification members may be quite low and their reliability may also 
be relatively high since they are not susceptible to moisture or other damage typically associated 
with smart cards. 

[0047] In an altemative embodiment, a smart card or other transaction card or non- 

transaction card (e.g., voting card or other suitable card) may include a translucent identification 
member if desired. Hence a transaction card is disclosed and includes for example a portion 
containing card identification information (such as a transaction card number, which may be 
impressed thereon such as through raised printing or electronically or through any other suitable 
storage mechanism such as magnetic strip or any other suitable mechanism), as well as a portion 
containing a translucent identification member that has a translucent area that includes one or 
more obscured identifiers. As such transaction cards such as credit cards, banking cards or any 
other transaction cards may include a window that contains the translucent identification member 
or may have a transaction identification number or other identification information affixed to a 
conventional transaction card to enhance security. 

[0048] In another embodiment, the role of the translucent identification member and the 

recipient unit are reversed. For example, in this embodiment, the translucent identification 
member contains the visual fihering pattem and the display screen displays at least one obscured 
identifier that may be for example data representing user authentication data that is unique to a 
user, or other data if desired. The combination of overlaying the translucent identification 
member (visual filter) over the display that displays an obscured identifier, reveals (un-obscures) 
the at least one obscured identifier on the screen. The visual filtering pattem on the member 
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stays the same since it is printed on the member, and the displayed obscured identifier is changed 
during each session or at other suitable intervals. 

[0049] Accordingly, one or more of the following advantages may result. Since the 

translucent identification members can be printed by an organization security officer, no 
manufacturing costs need to be incurred and they can be generated locally for a recipient. Since 
there need not be electronics, there is no battery to be replaced and no damage from exposure to 
moisture need occur. No network or radio connectivity is required such as typically required by 
devices employing magnetic strips. The translucent identification member may be made of 
plastic or any other suitable material and in any suitable thickness. They are durable and easy to 
replace in the event of a compromise since they may be produced locally to an organization. 
Also investment in a substantial network infrastructure to continually generate master codes that 
are matched with dynamically changing codes on a screen and a smart card can be avoided. 
[0050] In one embodiment, the displayed visual filtering pattern selectively illuminates a 

portion of a translucent identification member to visually reveal one of the one or more obscured 
identifiers. The visual filtering pattem can be changed with each authentication session. The 
one or more obscured identifiers are printed indicia on a semitransparent (or transparent) card 
and is preferably unique within a particular domain of users. The one or more obscured 
identifiers are visually obscured through many suitable techniques such as color shading, 
ordering of the characters, a combination thereof or any other suitable visual obfiiscation 
technique. FIG. 1 illustrates one example of a system 10 for securely providing identification 
information that includes a translucent identification member issuer 12 operative to generate a 
secure identification member such as translucent identification member 14, a visual filter 
generator 16, a translucent identification member authentication module 18, a recipient unit 20 
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and memory 22. In this example, the visual filter generator 16 and translucent identification 
member authentication module 18 are included as part of a translucent identification member 
authenticator 24 that may be implemented as one or more software modules executing on a 
computing unit such as a personal computer, work station, server, hand held device, or any other 
suitable device or multiple networked devices. The translucent identification member 
authenticator 24 is operatively coupled, in this example, to a web server which in turn is 
operatively coupled to a network such as the Intemet 26 to facilitate web based conmiunication 
between a recipient unit 20 and a translucent identification member authenticator 24. As such 
multiple circuits are formed by the software and processing device(s). Also, as used herein, 
circuits also refers to any suitable electronic logic in any suitable form including but not limited 
to hardware (microprocessors, discrete logic, state machines, digital signal processor etc.), 
software, firmware or any suitable combination thereof 

[0051] The translucent identification member issuer 12, the visual filter generator 16, and 

the translucent identification member authentication module 18 may be implemented in any 
suitable manner and is preferably, but not limited to, software modules executing on one or more 
computing devices that contain one or more processing devices that execute instructions that are 
stored in memory. 

[0052] In this example, the translucent identification member issuer 12 will be described 

as a local server that generates the translucent identification member 14 using a printer or other 
suitable mechanism to generate a translucent identification member 14. The translucent 
identification member includes a translucent area that includes one or more obscured identifiers 
thereon. However, it will be recognized that the translucent identification member issuer 12 may 
be included as part of the translucent identification member authenticator 24, or may be located 
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on any other suitable device including a web server and it will be recognized that any of the 
software programs described herein may be suitably located on any suitable device or devices as 
well. 

[0053] The memory 22 may be any suitable local or distributed memory and may be 

located on a web server or locally if desired. The memory may be RAM, ROM or any suitable 
memory technology. The recipient unit 20 may be any suitable device such as a laptop 
computer, desktop computer, hand held device or any other suitable device that includes a 
display 30 and user interface, and may include one or more processing devices that execute 
instructions stored in any suitable memory. The recipient device includes the requisite circuitry 
to provide one or more user interfaces such as graphic user interfaces through web browsers or 
other applications or operating systems and may include speech recognition interfaces or any 
suitable user input interfaces. As such the units include a display circuit operative to display a 
visual filtering pattern defined such that when the visual filtering pattem is visually combined 
with one or more obscured identifiers located on a translucent identification member, a 
designated one of the one or more identifiers is visually revealed; and an input interface 
operative to receive data representing the visually revealed identifier. In one example, a user 
interface is used to request entry of a serial number associated with the translucent identification 
member; and request entry of the revealed identifier to determine whether to grant a desired right 
for the recipient. 

[0054] Also if desired, a receiver unit can receive the filter or obscured identifiers for 

display on a display screen and send the response back through a completely different device (or 
through a completely different channel) such as a cell phone, by SMS message, email message or 
other suitable channel and/or device. 
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[0055] Referring also to Figs. 2 and 3, a method for securely providing identification 

information will be described. As shown in block 200, a recipient sends a request into the 
translucent identification member issuer 12 through the Internet or through any other suitable 
mechanism to request issuance of a translucent identification member 14. This may be done for 
example by a recipient registering with an online financial institution with user-supplied data 
such as a password or other secret information. This is shown as recipient specific information 
32 that is received by the translucent identification member issuer 12. 

[0056] As shown in block 202, the method includes generating one or more obscured 

identifiers for a recipient, which may be based on, for example, the recipient specific information 
32 and/or other information 34. The other information 34 may be a translucent identification 
member serial number or other suitable information if desired. This may be done for example by 
the translucent identification member issuer 12, or any other suitable entity. As shown in block 
204, the method includes generating the translucent identification member 14 that has a 
translucent area 36 that includes one or more obscured identifiers 38. The one or more obscured 
identifiers 38 are generated by the translucent identification member issuer 12 in this example 
and stored in memory 22 in a database form. The one or more obscured identifiers are stored in 
memory 22 so that they may be subsequently accessed when it becomes necessary to create 
appropriate visual pattems 40 to reveal the desired revealed identifier 700 or when checking the 
returned revealed identifier 700. 

[0057] For example, the translucent identification member issuer 12 may control a printer 

to print a cellophane card as a translucent identification member 14 that has printed thereon one 
or more obscured identifiers. One example of a translucent identification member is shown in 
FIG. 4. The translucent identification member 14 can be made of any suitable material such as 
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plastic or any other suitable material that provides some level of transparency so that a 
combination of the one or more obscured identifiers when overlayed on a display that emits light, 
allows the light energy (or lack of light energy) from the display to combine with the one or 
more obscured identifiers to visually designate one of the one or more identifiers on a translucent 
identification member. The one or more identifiers on a translucent identification member may 
also be a plurality of different obscured identifiers. 

[0058] The translucent identification member 14 may be a card, sheet, film or other 

member that may include if desired any suitable adhesive or connecting structure to be applied 
over a window of transaction card, or any other suitable material. The translucent identification 
member may also be connected to a transaction card, such as, for example, by using a suitable 
connecting structure to join the translucent identification member to an end or side of a 
transaction card. The one or more obscured identifiers 38 that are printed on the translucent 
identification member 38, as noted above, may be characters (e.g., ASCII), symbols, print 
patterns, colored versions thereof or any other suitable indicia. The one or more obscured 
identifiers 38 appear to be visually obscured and hence seemingly random when viewed by a 
recipient. In other embodiments it may be desirable to print pattems of ink that do not connote 
characters but instead visually conceal a message or other information so that when overlayed on 
top of a display the pattem generated by the display in combination with the printed image, 
allows the viewer to visually decipher a revealed identifier. 

[0059] The translucent area 36 includes an information pattem that represents one or 

more identifiers that may be unique identification information that may be used for one or more 
authentication sessions or other purposes. The information pattem represented by one or more 
obscured identifiers is preferably unique to a given domain of users to reduce the likelihood of 
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the same user obtaining a same translucent identification member with the same obscured 
identifiers. The translucent area 36 is configured (e.g. sized) to overlay at least a portion of the 
display screen 30 on the recipient unit 20. hi one embodiment, each of the one or more obscured 
identifiers may serve as one-time authentication identifiers for the recipient of the translucent 
identification member. It is noted, as used herein, identification information includes any 
information used to directly or indirectly authenticate a user (e.g., TIDM recipient) or other 
process of interest, or to get access to a desired right associated with a process or device, or any 
other suitable information that is intended to be kept secret except at the time a transaction is to 
be effected. 

[0060] To make the TIDM, the method may include receiving a request firom a user for 

one or more obscured user identifiers and recording a link between the user and the identification 
information associated with the one or more obscured user identifiers. The method may include 
providing the one or more obscured user identifiers to the user wherein the one or more obscured 
user identifiers are on a translucent identification member that is sent to the user, the one or more 
obscured user identifiers are sent to a third party to be placed on a translucent identification 
member for the user, the one or more obscured user identifiers are sent to the user for placement 
on a translucent identification member, and the one or more obscured user identifiers are selected 
fi-om a pre-existing pool of obscured user identifiers. The request fi-om the user may include user 
specific information and the user specific information may be used to create the one or more 
obscured identifiers or may be combined with other information to produce the one or more 
obscured user identifiers. 

[0061] As shown in block 206, once the translucent identification member 14 has been 

generated and provided to a recipient, the visual filtering generator 16, or other suitable 
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mechanism generates a visual filtering pattern for display on the display 30 of the recipient 
device. When the visual filtering pattem 40 is displayed by the recipient device, the visual 
filtering pattem visually combines with the one or more obscured identifiers located on the 
translucent identification member 14, to designate one of the one or more identifiers. In other 
words, the visual filtering pattem filters out undesired identifiers to reveal a selected one of the 
one or more identifiers. 

[0062] As shown in block 208, the method may include overlaying, such as by a 

recipient, or a device, the translucent identification member 14 on the displayed filtering pattem 
40 to visually identify a designated one of the obscured identifiers on the translucent 
identification member 14. The visually identified identifier is then entered by the recipient to 
facilitate a transaction or gain access to a specific desired right associated with any process or 
device of interest. 

[0063] As shown again in FIG. 3, the steps of FIG. 2 are presented in more detail. As 

shown in block 300, generating one or more obscured identifiers for a recipient may be done for 
example by the translucent identification member issuer 12 or any other suitable entity by 
obtaining recipient specific information, such as secret or non-secret data or non-user related 
information. This process may also be accomplished by using non user-related and non user- 
supplied material, in which case, the generated one or more obscured identifiers are subsequently 
associated with a user. When recipient specific information is used, this may be a personal 
identification number, password,, user name, account number or other data provided by the 
recipient through the recipient unit 20 or from any other suitable source. This is indicated as 
recipient specific information 32. As shown in block 302 the recipient specific information 32 is 
suitably combined, such as through a suitable mathematical fiinction or algorithm, to produce the 
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one or more obscured identifiers 38. The other information 34 may be, for example, output 
generated from a random number generator, the actual translucent identification member serial 
number 44 (or other TEDM identification information) that may be printed on the translucent 
identification member 14 or stored by the translucent identification member issuer 12, or any 
other suitable information. As shown in block 204, a translucent identification member serial 
number, or any other suitable information for identifying the translucent identification member, 
is assigned to the obscured one or more identifiers 38. It will be recognized that upon an initial 
request or generation of a translucent identification member that the translucent identification 
member issuer 12 may select a translucent identification member serial number and associate 
therewith the recipient specific information 32. This information may be combined to generate 
the one or more obscured identifiers 38. The translucent identification member serial number 44 
may be stored in memory 22 for later use by the translucent identification member authenticator 
24 (authenticating a recipient using the translucent identification member 14). The order of the 
steps as described herein with respect to any method may be suitably reordered based on a 
desired result. 

[0064] As shown in block 306, generating the translucent identification member 14 may 

include printing the obscured different identifiers in a desired format on a plastic film, sheet or 
card to produce the translucent identification member 14. As shown in block 308, displaying the 
fihering pattem 40 on a display may include randomly selecting, from the obscured identifiers, a 
selected identifier to produce a visual filtering pattem 40 on display 30 that reveals the selected 
one of the obscured identifiers as the identifier to be revealed when the translucent identification 
member 14 is overlayed on the visual filtering pattem 40. 
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[0065] As shown in FIGs. 4 through 7, and to further illustrate an example, as shown in 

FIG. 4, the translucent identification member 14 has printed thereon the translucent identification 
member serial number 44 or other identification information and the one or more obscured 
identifiers 38 printed in the translucent area 36. As noted above this may be printed on 
cellophane material or other material readily accommodated by conventional printers, if desired, 
to reduce fabrication costs. However any suitable material or manufacturing process may be 
used. Once the recipient is in possession of the translucent identification member 14, multi- 
factor authentication is provided using the translucent identification member 14. 
[0066] The filter may be generated in any suitable way. For example, a selected 

obscured identifier may be chosen from the stored one or more obscured identifiers whose 
position on the TIDM is defined. The visual filter pattem generator 16 produces a filtering 
pattern based on a predefined layout of the TIDM to insure that the filter blocks the proper 
character locations. Any other suitable technique may also be used. 

[0067] As shown in FIG. 5, the recipient device 20 may display, through a web browser 

or other suitable user interface, an input screen, based on a received HTML page if a web 
browser is being used, containing fields that receive user input such as a user identifier field 500, 
a password field 502 and the translucent identification member serial number field 44. The user 
submits the entered information through suitable interface buttons 504. This information is then 
sent to the web server via the Internet and if desired forwarded to the translucent identification 
member authenticator 24. As shown in this example the information entered in user ID field 500 
or the password field 502 may be considered recipient specific information 32 that was 
previously entered when the translucent identification member issuer 12 initially generated the 
translucent identification member 14. 
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[0068] FIG. 6 illustrates one example of a graphic user interface (generated based on a 

received HTML page) displayed on display 30 to facilitate securely providing identification 
information using the translucent identification member 14. The graphic user interface may be 
generated for example through a web browser and suitable host processor on the recipient unit or 
any other suitable processor, and indicates an overlay area 600 that may be the same size or a 
different size than a visual filtering pattern 40 that is presented on the display 30. Hence in 
response to the login screen shown in FIG. 5, the translucent identification member authenticator 
24 submits a response containing the visual filtering pattern 40 and the response interface screen 
shown in FIG. 6. The recipient unit 20 displays the visual filtering pattem 40 and a revealed 
identifier field 602 to allow entry of the one revealed ID fi-om the one or more obscured 
identifiers. 

[0069] FIG. 7 graphically illustrates the condition where the translucent identification 

member 14 is overlayed on top of the visual filtering pattem 40 to reveal one of the one or more 
obscured identifiers. The user positions the translucent identification member 14 and hence the 
one or more printed obscured identifiers 38 over the visual filtering pattem 40 and the 
combination of the visual filtering pattem 40 and the printed different obscured identifiers 38 
reveals in this example a revealed identifier 700 which is then entered by the recipient in the 
revealed identifier field 602. The user then submits the revealed identifier 700 to the translucent 
identification member authenticator 24 to authenticate the user for the particular transaction or 
for access to a particular right. Accordingly, the translucent identification member authenticator 
24 receives data representing the revealed identifier 700 in response to a user or other entity 
overlaying the translucent identification member 14 on the display 30. The translucent 
identification member authentication module 18 compares the received revealed identifier 700 
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with a corresponding expected identifier 702 (see FIG. 1) to determine whether proper 
authentication of the recipient is appropriate. The translucent identification member 
authentication module 18 obtains the corresponding expected identifier 702 fi'om the memory 22 
or may generate the expected identifier on the fly knowing the visual filter pattem and accessing 
the obscured identifiers 38, or may obtain the expected identifier 702 in any other suitable 
manner. 

[0070] Referring to FIGs. 8 and 9 the issuance of a translucent identification member 14 

will be described in more detail by way of an exemplary embodiment. In order to obtain a 
translucent identification member 14, a recipient registers with an online bank or other institution 
using recipient specific information 32 such as an account nimiber or other information as 
indicated by registration request 800. This request is then passed through to a web server 802. 
The web server 802 then communicates with a bank server 804 which includes for example a 
customer management system and translucent identification member requester 806 which may 
be a suitable software application executing on a processing device if desired or any other 
suitable structure. The bank server 804 then generates a translucent identification member 
issuance request 808 to the translucent identification member issuer 12 which may be included in 
or separate firom a suitable server 810. The translucent identification member issuance request 
808 includes the recipient specific information 32 entered by the user. In response, the 
translucent identification member issuer 12 provides the obscured identifiers 38 in a response 
message 810 and generates and records a translucent identification member serial number 44 in 
the memory 22 along with the associated obscured identifiers 38 that will appear on the 
translucent ID member 14 for the requesting recipient. In this example, the bank server 804 links 
the recipient's account with the translucent identification member serial number 44 and then 
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stores the linked information in a database 810 for later use. The bank server 804 then generates 
the translucent identification member 14 by, for example, formatting the obscured identifiers 38 
for printing and sending the information to a printer 814 or other device which then prints out or 
manufactures the translucent identification member 14. Hence the translucent identification 
member serial number 44 is assigned by the translucent identification member issuer 12 and is 
associated (e.g., linked) with the one or more obscured identifiers 38 and with the user in 
memory 22 in a database. 

[0071] The translucent identification member issuer 12 may include an information 

randomizer 900 and a translucent identification member formatter 902, The information 
randomizer 900 may use the translucent identification member serial number 44 as other 
information 34 to be combined with the recipient specific information 32 to generate the one or 
more obscured identifiers 38. This may be done using a hash algorithm or other suitable 
encoding technique as desired to generate the one or more obscured identifiers 38. The 
translucent identification member formatter 902 may be another software application executing 
on a suitable processing device or devices that formats the information for output to a printer or 
other manufacturing device. 

[0072] FIGs. 10 and 1 1 illustrate another embodiment of the operation of the system after 

the issuance of the translucent identification member has occurred. As shown in block 1000, the 
method includes requesting and obtaining recipient specific information 32 such as previously 
described with reference to FIG. 5. Once the translucent identification member 14 has been 
printed or manufactured, it is then provided to the recipient by hand or through mail or any other 
suitable technique as shown in block 1002. As shown in block 1004, a bank server of a bank 
determines if a recipient has requested authentication, such as to a logon request. If a request has 
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been received, a web page may be sent requesting entry of the recipient information 32 including 
the password and the translucent identification member serial number 44 as a first level of a 
multi-factor authentication process as shown in block 1006. This may be done for example 
through the screen shown in FIG. 5. As shown in block 206, the bank server determines whether 
the entered recipient specific information 32 and password and translucent identification member 
serial number 44 are correct for example by passing along the information to the translucent 
identification member authenticator 24. If the first authentication level passes, the method 
includes, as shown in block 1010, displaying the visual filtering pattern 44 that when visually 
combined with the one or more obscured identifiers 38 on the translucent identification member 
14, reveals only one of the one or more obscured identifiers as the appropriate identifier to be 
entered for the current session or transaction. The bank server may then, through the web server, 
request entry of the revealed identifier 700 as selectively revealed through the filtering pattem 
displayed on the display by providing the screen as shown in FIG. 6. This is shown in block 
1010. In response to the request, the translucent identification member authenticator 24 receives 
the revealed one time use identifier 700 and compares the received identifier to a corresponding 
expected ID determined for example by the visual filter generator or authenticator 24. This is 
shown in block 1012. Given the "filter", the user's data entry and stored information about that 
user, the authenticator can validate whether the user entered correct data or not (either on its own 
or by passing it to a "server"). If the desired identifier is generated before requesting it fi*om the 
user, the system also generates the right filter to reveal the pre-determined identifier (all before 
presenting to the user). Alternatively, if the user is provided with a pattem (the filter) and then 
the system vaUdates the identifier that the user entered with the identifier that would have 
resulted firom that pattem, a desired identifier need not be picked ahead of time and the "filter 
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generator", therefore does not require knowledge of anything else. The data representing the 
visually revealed identifier (e.g., the date itself, an encrypted form thereof or other suitable data, 
may also be received using a device other than the device on which the visual filtering pattern is 
displayed. For example, the identifier may be revealed on a screen of one device and a handheld 
device or non-handheld device may be used to enter and send the visually revealed identifier to 
another device or system that checks whether there is a match. 

[0073] As shown in block 1014 if a match does not exist, the recipient will be sent an 

error and requested to re-enter the revealed identifier. The system may change to using a 
different identifier for the re-try. Also, the system may lockout the user after a certain nimiber of 
failed attempts. However, as shown in block 1016, if a match occurs, second factor 
authentication is determined to be successfiil and the user is granted the desired right. 
[0074] FIG. 12 and FIG. 13 illustrate examples of transaction cards that employ 

translucent identification members 14 (including the type shown in FIG. 14). The transaction 
cards may be smart cards or non-smart cards and have the conventional information associated 
with credit cards, debit cards, or any other suitable transaction cards and in addition include the 
translucent identification member 14. The translucent identification member 14 appears on a 
portion of the transaction card. One portion of the transaction card includes account information 
such as an account number, credit card nimiber, or any other suitable identifier 1300 and if 
desired, other user identifiers such as a user name 1402. In an example shown in FIG. 12, the 
transaction card includes an opening 1306 that may be, for example, cut in the plastic transaction 
card or otherwise provided in the plastic card and a translucent identification member 14 with 
adhesive may be placed over the opening or may be integrally molded therein or otherwise 
attached such as but not limited to a connecting structure configured to receive and hold the 
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TIDM in or to the transaction card so that the size of the transaction card is the same size as 
conventional transaction cards or any other suitable size as desired. If used, the connecting 
structure may be a snap fit structure, slide in structure, adhesive based connection or any suitable 
coimecting structure as desired. 

[0075] FIG. 13 illustrates a different example in which the translucent identification 

member 14 is attached to a side surface or any other surface of a conventional transaction card. 
The translucent identification member 14 may be foldable along a fold line 1400 or may be of a 
thickness wherein it is non-foldable and formed as part of the transaction card if desired. Any 
other suitable mechanisms for suitably attaching the translucent identification member with or to 
a transaction card is also contemplated. 

[0076] FIGs. 14 and 15 illustrate an alternative embodiment that basically reverses the 

role of the translucent identification member and the recipient unit. In this embodiment, the 
translucent identifier 14 contains the visual filtering or enhancement pattern 40 and the display 
screen displays at least one obscured identifier that may be for example data representing user 
authentication data that is unique to a user or non-unique to a user as desired (see FIG. 15). As 
with the previous embodiment, the combination of overlaying the translucent identification 
member (visual filter) over the display that displays an obscured identifier, reveals (un-obscures) 
or enhances the at least one obscured identifier on the screen. The revealed user authentication 
data may then be entered into a suitable transaction device as the password or other user 
authentication information. Also, when the translucent area is attached or incorporated in a 
conventional transaction card, the transaction card includes as shown for example on FIGS. 12 
and 13, a first portion containing a transaction card number and a second portion containing a 
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translucent identification number or other identifying information having a translucent area that 
includes a visual filtering pattern. 

[0077] FIG. 16 illustrates one example of a system 1600 employing the TIDM 14 of FIG. 

14. In this example, the TIDM authenticator 24 includes an obscured identifier generator 1602 
similar to the type used to generate the one or more identifiers described with reference to FIG. 
1. The obscured identifier generator 1602 generates the obscured identifier(s) after receiving 
recipient specific information fi-om a user, such as a user name, TIDM serial number, or other 
suitable information, to insure that the proper obscured identifier is displayed for that user. As 
part of the registration process, the user may have akeady provided the same user specific 
information and the obscured identifier generator 1602 may have aheady generated the obscured 
identifier and stored them in memory 22. 

[0078] The translucent identification member issuer 12, in this example generates a 

TIDM 14 having a translucent area having a visual filtering pattern 40 thereon configured to 
visually filter a displayed obscured user identifier(s) 38 and is configured to overlay at least a 
portion of a display screen. Having a user enter in user specific information to initiate a session 
may be desirable where the same filtering pattem is printed on translucent identifier members for 
a plurality of users. It is desirable to know that the holder of the TIDM is a proper user as 
opposed to a thief that stole the TIDM. The authenticator, or other source, sends the generated 
obscured identifier to the recipient device. The recipient device displays the at least one visually 
obscured identifier as user authentication data and receives data representing the revealed user 
authentication data (such as the revealed ID itself or a representation of it) based on the 
translucent identification member having a filtering pattem thereon. For example when the 
translucent identification member having the filtering pattem thereon is held over the display, the 
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filter reveals the user identifier. If desired, a translucent identifier serial number can be assigned 
to each TIDM even though the same filter pattern may be printed on more than one TIDM. As 
such, several users may have translucent identification members with the same filter pattem. 
[0079] The translucent identification member issuer 12 is operative to generate a 

translucent identification member 14 having a translucent area that includes a visual filtering 
pattem 40 thereon configured to visually filter a displayed obscured user identifier and 
configured to overlay at least a portion of a display screen. The obscured identifier generator 
1602 generates at least one visually obscured identifier for display on a display, in response to 
received user information such as user specific information. The translucent identification 
member authenticator 18, in this example receives data representing the revealed identifier such 
as through the user entering the information through a user interface after the filtering pattem is 
overlayed on the display and as previously described, the translucent identification member 
authenticator compares the received revealed identifier with a corresponding expected identifier 
(since it was generated by the obscured identifier generator) to determine whether proper 
authentication of a recipient is appropriate. Alternatively, the translucent identification member 
authenticator may send the received revealed identifier to a third party that carries out the 
comparison and sends a message back to the authenticator or recipient unit. Any other suitable 
division of operations may also be used as desired. The translucent identification member 
authenticator or third party then sends right-grant information to a recipient unit in response to 
the received data matching the corresponding expected identifier. 

[0080] FIG. 17 illustrates one example of a method for securely providing identification 

information that includes generating at least one obscured identifier for a recipient based on, for 
example, received recipient secret data or non-secret data or data that is not related to or received 
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from the recipient. This is shown in block 1700. As shown in block 1702, the method includes 
generating a translucent identification member 14 having a visual filtering pattern 40 thereon. 
After the TIDM has been made, the method includes receiving user identification information, 
such as a PIN: or other data as a first factor of authentication for the user. As shown in block 
1704, the method includes sending the one or more obscured identifiers to the recipient and 
displaying at least one visually obscured identifier as second factor user authentication data, that 
when visually combined with the visual filtering pattern 40 on the translucent identification 
member, reveals an obscured identifier for a user. As shown in block 1706, the method includes, 
the user for example, overlaying the translucent identification member on the display to visually 
identify the obscured identifier through the filter. The method also includes receiving data 
representing the revealed user authentication data based on the translucent identification member 
having a filtering pattern thereon. The method also includes receiving user specific information,, 
such as prior to the step of displaying the obscured identifier, to determine the visually obscured 
identifier to be displayed on the display. For example, the system needs to determine which 
obscured identifier to display since each user preferably has a different identifier. This may be 
determined for example by having the user enter user specific information, through a user 
interface in the recipient unit, such as a password or other secret or non-secret information as 
desired. 

[0081] Stated another way, the method includes receiving user identification information 

as a first factor of authentication for a user and using, such as by the TIDM authenticator, service 
provider or other suitable entity, such user identification information to identify a translucent 
identification member in memory containing a particular visual filtering pattem known to have 
been associated with such user. The method includes generating an expected identifier to be 
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used as a second factor of authentication for the user associated with the received user 
identification information and generating a pattern of obscured user identifiers containing the 
expected identifier such that when the pattern of obscured user identifiers is combined with the 
visual fihering pattem on the identified translucent identification member associated with the 
user the expected identifier will be revealed. The method includes transmitting the pattem of 
obscured user identifiers to a display (e.g., a displayed GUI) and requesting entry of a revealed 
identifier; and receiving data representing the revealed identifier. As noted above, the TIDM 
authenticator for example, or any suitable number of servers, or devices act as the circuits to 
carry out the above operations. 

[0082] The primary functionality of the disclosed apparatus, methods and systems may 

be provided through application programming interfaces (APIs) that are executed by one or more 
processing devices that can be readily integrated into current infi-astructures. In addition, each 
translucent identification member in one embodiment is different and has seemingly different 
random information since the seemingly random information is typically, but not necessarily, 
generated from information unique to a recipient, such as a password, user name, personal 
identification number, or any other information. In each embodiment, translucent identification 
members, and/or visual filters and/or obscured identifiers can be pre-manufactured and 
subsequently associated with a user. Additionally, the obscured identifiers and/or filtering 
pattems can be pre-generated and subsequently apphed to translucent identification members. 
Such subsequent application to translucent identification members may be done by the creator of 
the filtering pattems or obscured identifiers or may be done by the entity providing the service or 
by a third-party contractor of the service provider. Since the manufacture of translucent 
identification members can be done with very simple materials such as transparent plastic, it is 
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also possible for the service provider to send the obscured identifiers or visual patterns to users 
who can then themselves, apply the filtering pattern or obscured identifiers to a translucent 
identification member. 

[0083] The same translucent identification member may be used a repeated number of 

times since there may be a plurality of different obscured identifiers thereon wherein each time 
authentication is requested a different one of the obscured identifiers is exposed through the 
visual filtering pattem. Hence the visually revealed identifier on the translucent identification 
member can change during each authentication session if desired. The translucent identification 
members described herein may be used for user authentication, activating software applications 
or for any other suitable purpose. The different obscured identifiers may be characters, images, 
or any other suitable information. 

[0084] Fig. 18 illustrates one example of an article 1800 (e.g. a member), such as a 

translucent or non-translucent film, sticker, card, or any other suitable material or article. It will 
be recognized that the information shown on the article 1800 is shown as one example only and 
it will be recognized that any suitable information may be used, hi this example, the article 1800 
includes location information 1802 and 1804 (shown as row and column indicia) respectively 
and sender authentication infprmation 1806 in the form of numbers that are addressable or 
locatable by the coordinate location information (e.g. row and column information). In addition, 
the article 1800 includes an optional article identifier 1808 such as a serial number generated 
(e.g. assigned) by the issuer of the article 1800. 

[0085] Generally speaking, the article 1800 if desired, may be generated as described 

above with respect to the translucent identification member to generate for example the sender 
authentication information. However, in addition the location information 1802 and 1804 also 
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needs to be added in one embodiment. In addition, it will be recognized that the translucent 
identification member 14 may also be used as a sender authentication article and that the 
obscured identifiers 38 may also serve as sender authentication information. 
[0086] Li addition, in this embodiment there need not be recipient specific information if 

the system does not require it, as the sender authentication information may be generated either 
independent firom or based on recipient specific information if desired. This may occur when the 
recipient signs up for the service. In addition, as used herein, location information includes the 
information, for example, sent with a message or indexed by a message sent by the sender which 
indicates which sender authentication information on the article 1800 that the recipient is to 
verify. For example, location information need not be row and column information, but may 
merely be the terms such as "upper left comer", "lower left comer", "third from the right", or 
any other suitable information to notify the recipient which sender authentication information on 
the article is to be used as the authentication information for the given session, transaction or 
other communication. Alternatively, the sender authentication information can be a pointer to a 
location that contains the sender authentication information, such as, for example, a universal 
resource locator (URL) that points to the sender authentication information for the given session, 
transaction or other communication. Additionally, the location information can be a pointer to a 
location that contains the actual location information, which in tum indicates where to look on 
the article for the sender authentication information for the given session, transaction or other 
communication. In another embodiment, the location information is a visual filtering pattern. 
[0087] Fig. 19 illustrates a transaction card 1900 that may include, for example, a 

magnetic strip 1902 or any other suitable information that may provide account information or 
message sender information. The transaction card 1900 may be for example a banking card. 
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credit card, debit card or any other suitable transaction card as described above and may include 
transaction card identifier information such as a card number etc., as described above. This 
transaction card 1900 is different from conventional transaction cards because, among other 
things, it includes the article 1800 thereon (or member), therein or secured thereto in any suitable 
manner. As such, variations of the transaction card 1900 are illustrated for example in Fig. 13. 
In one example, the member 1800, such as a piece of adhesive backed paper or any other suitable 
member, is secured to a conventional transaction card if desired. It will also be recognized as 
described above that the member or article may be secured or suitably affixed in any suitable 
manner including, but not limited to adhesive, or any other suitable mechanism. The member 
1800 may also be sent to a recipient as a tear away portion of a financial statement, billing 
statement etc. Preferably it is sized to fit on a transaction card. 

[0088] Fig. 20 illustrates one example of a method for providing electronic message 

authentication that may be carried out by any suitable element. In this example, it may be 
carried out for example by a server or plurality of servers or other suitable appUcations executing 
on one or more processing devices. As shown in block 2000, the method includes, for example, 
when a sender such as a bank server or other message sender wishes to send a message to a 
recipient, determines desired location information, such as a row and column that also exists on 
the particular recipient's article, and corresponding desired sender authentication information to 
be sent and matched with sender authentication information located on the article and is beatable 
according to the sent location information. This may be done for example by accessing a 
database that links a recipient's email address for example, to corresponding database fields that 
represent for example the content of an article that was issued for that recipient. As shown in 
block 2002, the method includes sending the electronic message and both desired location 
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information and corresponding desired sender authentication information, to the recipient 
wherein the desired sender authentication information is locatable on the article based on the sent 
desired location information. As such, for example, the sender or sending unit may associate 
(e.g., append, pre-pend, insert or otherwise attach) row and column information and 
corresponding sender authentication information that should appear at those locations on the 
article as part of an electronic message to a recipient. The recipient may then locate, based on 
the received column and row number, the sender authentication information on their article that 
was issued to them by (or on behalf of) the sender, and confirm that the sent desired sender 
authentication information matches the same information at the locations indicated by the sent 
location information sent by the sending unit. If a match occurs, then the recipient trusts the 
sender of the message. It will be recognized that the sent location information and sender 
authentication information may be the data itself, an index to, function of, reference to, or any 
other suitable representation of either of both the location information and the sender 
authentication information. 

[0089] For example, the location coordinate information and corresponding sender 

authentication information could include electronically transmitted data for display on a display 
device, such as a visual filtering pattem and sender authentication information. In this 
embodiment, the article would be a transparent article to allow a user to place the article over an 
area of a display screen. The sent message would include the visual filtering pattem along with 
the desired sender authentication information that should appear visually to the user when the 
user overlays the article on a display screen. If the recipient visually recognizes or sees the 
sender authentication information that is revealed through the visual filtering pattem on screen 
with the sent desired sender authentication information and it matches, then the user can tmst the 
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sender of the message. As such, visual filtering techniques as previously described with respect 
to the translucent identification member for recipient authentication may be used in part to 
authenticate a sender. 

[0090] Referring also to Fig. 21, a specific example of a message and associated sender 

authentication information and location information is shown as 2100. Li a particular 
embodiment, also referring to Fig. 18, the message is appended with sender authentication 
information and in particular numbers "98413" and coordinate information of "A2, E4, Fl, H4, 
J2". As such, the sending unit sends the electronic message along with both desired sender 
authentication information and desired location information as shown. The user then uses the 
article 1800 and looks, for example, at coordinate location A2 and sees the number 9, looks at 
the location coordinate E4 and sees the number 8, looks at the coordinate location Fl and sees 
the number 4, looks at the coordinate location H4 and sees the nxmiber 1, and looks at the 
coordinate location J2 and sees the number 3. If the user sees the same sender authentication 
information on the article 1800 as was sent by the sending unit, then the recipient trusts the 
sender as being an authentic message sender. Li this example, the sender authentication 
information visually represents sender authentication information that is identifiable by location 
coordinate information in the form of rows and columns. However, it will be recognized that 
rows and column format need not be used and as such the cells as shown need not be employed. 
For example, if objects are used as opposed to letters and numbers, the objects may be located in 
upper left, upper right, middle or any other suitable location of the article and the sender 
authentication information, which could be the object can be sent such as in the form of a graphic 
or other suitable object, and the coordinate location information may actually be words that 
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might read "upper left comer". Any other suitable coordinate location information or sender 
authentication information may also be used. 

[0091] The article 1800 as noted above may be for example a piece of paper, a plastic 

card, transparent plastic card, sticker that can be affixed to existing plastic cards or any other 
suitable article. In this example, each email recipient is provided with the article with its own 
randomly (or seemingly randomly) generated contents. When sending an email, an originator's 
message transfer agent or other server component associates with each outbound email either 
directly or indirectly such as by a link to an HTML page using a URL or other suitable reference, 
coordinates or other directions for locating one or more of the card's cells or locations. Also 
appended, pre-pended, inserted, or otherwise attached to the email are the contents at those 
locations. Upon receipt, the user confirms the lookup results using their individual sender 
authentication article, such as reading the coordinates listed in the email and looking them up on 
their own sender authentication article. In the embodiment where a translucent version of the 
authentication article is used, the authentication article may be placed over a visual filtering 
pattern provided with the email and the revealed sender authentication information is compared 
by the recipient to the desired sender authentication information that is provided in the email. If 
the characters or other information do not match, then the authentication has failed. 
[0092] Fig. 23 illustrates in more detail a method for providing electronic message 

authentication wherein the method includes, as shown in block 2300, generating for example, 
random sender authentication information to be placed on the article and if desired, location 
information that may also be placed on the article and linking the two with the selected recipient. 
Random includes pseudo random information or any suitable level of randomization of 
information. This may be done as described above with respect to the translucent identification 
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member through a suitable interface on one or more server computers or any other suitable 
device. As shown in block 2302, this information is stored as the authentication information and 
corresponding location information in a suitable database. As shown in block 2304, the method 
includes creating an article, such as article 1800 containing the location coordinate information 
and corresponding sender authentication information and if desired an article identifier 1808 
such as serial number for issuance to a specific recipient. This may be done, for example, in 
basically a similar manner as described above. For example, a card may be printed, a transaction 
card may be suitably formed, or a sticker may be generated that can be adhered to any suitable 
article. The article is then sent to the recipient by mail or any other suitable channel. 
[0093] In an altemative embodiment, instead of using a type of hard token (e.g. article), a 

soft token may be used wherein the representation (may not be an actual image) of a card for 
example or representation of an article may be sent electronically for display via a display screen 
to a user or for other electronic access by such user, either during each session or once and the 
user may store the electronic sender authentication article in a file and may access it as 
necessary. As such the electronic representation of the article can be accessed by a software 
application so as to provide the recipient v^th the sender authentication information located at 
the location identified by the sent location information. 

[0094] As shown in block 2306, the method also includes, for example as described 

above with respect to Fig. 20, determining, such as by the sender, at least one desired item of 
location information and corresponding sender authentication information to append, pre-pend, 
insert, or otherwise attach to the current message. Selection of the location information and 
authentication information may be done in any suitable manner, such as randomly or in any other 
suitable fashion as desired. As shown in dashed block 2308, in an altemative embodiment. 
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location information and sender authentication information is effectively communicated in the 
form of a visual filtering pattern that may, if desired, cover up all row and column headings and 
instead just allow the sender authentication information to be visually displayed when the article 
is overlaid. As such, the method may include sending a visual filtering pattern for display to the 
recipient to allow the recipient to visually determine whether the sender is authentic. The 
recipient may place at least a portion of the sender authentication information that is on the 
article, over a visual filtering pattem that is displayed on the display screen, to determine 
whether the sent sender authentication information with the message matches the sender 
authentication information made visible by the visual filtering pattem. 

[0095] In one example the method includes appending at least one desired item of 

location information and corresponding sender authentication information to an electronic 
message for a recipient. The sender authentication information visually represents authentication 
information identifiable by the location coordinate information. As such, the message itself may 
be appended, pre-pended, inserted, or otherwise attached to the information or may contain a 
reference to the information such as a website or any other suitable link or any other suitable 
representation of the sender authentication information and location coordinate information. 
[0096] As shown in block 2310, the method includes sending the electronic message and 

data representing both the location coordinate information and the corresponding sender 
authentication information to a recipient. The recipient may then look at the information on the 
article and see if it matches that which was sent by the sending unit. 

[0097] It will also be recognized that determining at least one location coordinate, based 

on the location information and corresponding sender authentication information may be done, 
for example, dynamically as opposed to looking up the information stored in the database. For 
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example, the sender (e.g. message sending unit) may simply be programmed with a function to 
generate sender authentication information to send as opposed to looking up pre-stored 
information. 

[0098] Also if desired, the sender authentication information may be information for 

example, such as the ending balance on a bank statement, any suitable information in a billing 
statement or account statement that the sender may have previously sent to the recipient that may 
contain the sender authentication information. The location information may be the date of a 
particular statement and the sender authentication information may be the current balance on a 
credit card account. Any other statement may also be used or any other information known to, or 
provided by, the sending unit that is in the possession of the recipient may be used. 
[0099] Fig. 22 illustrates one example of a system for providing electronic message 

authentication that may, if desired, carry out the steps described with reference to Fig. 23. For 
example, a sending unit 2200, such as any server computer, pluraUty of servers, mobile devices 
or any other suitable structure may include a sender authentication article issuer 2202, or a third 
party may issue the sender authentication article as desired. For example, the sender 
authentication article issuer 2202 may generate the random sender authentication information 
and corresponding location coordinate information and link it with a recipient and store the 
information in the database 2204. The article 1800 may then be mailed, for example, to a 
recipient, or in the case of a soft token, sent electronically to the recipient. In this illustration 
(Fig. 22), a translucent article is shown. As such, the recipient 20 includes a display 30 and the 
message 2100 for example is displayed on the display along with a visual filtering pattern and 
the sent sender authentication information. The visual filtering pattern is then used to reveal the 
expected sender authentication information that is then matched by the recipient to that sent in 
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the message 2100. In this embodiment where the sender authentication article is a translucent 
type, the visual filtering pattern sent by the sender unit embodies location information since the 
result of the recipient overlaying the sender authentication article on a display screen will result 
in a visually revealed sender authentication information at particular locations in the article. As 
such, the visual filtering pattern includes the location information. In addition, it will be 
recognized that the term information refers to any suitable indicia. 

[00100] The sending xmit 2200 which may be a suitable server in a network, node, or any 
other suitable device, includes one or more circuits which may be in the form of one or more 
processing devices that execute software instructions that are stored in memory, or may be 
implemented using discrete logic, or any suitable combination of hardware, software or firmware 
to carry out the operations described herein. As such, the sender unit 2200 includes circuits that 
are operative to carry out the steps as described above. 

[00101] In another embodiment, the use of the sender authentication article may be 
combined for example with the systems described above with respect to the translucent 
identification member such that the translucent identification member includes the location 
information and sender authentication information thereon. For example the obscured identifiers 
if desired may also serve as the sender authentication information or in an alternative 
embodiment the translucent identification member may have a portion that includes the obscured 
identifiers and another portion that includes the location information and sender authentication 
information. In any event, use of a single article or member which is translucent as described 
herein can provide mailti-level authentication. For example, for sender authentication, the 
methods described above with respect to Figs. 18-22 may be employed to confirm that the sender 
is authentic. Once a recipient for example is convinced that the sender of an email is authentic, 
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the recipient may then click on a URL sent in the email message and then be presented with a 
suitable HTML form to enter account information or other confidential information. However, 
prior to entering this confidential information a second level of authentication may be carried out 
employing the translucent identification member and obscured identifiers so that the sending unit 
can authenticate the recipient at this stage of the session or transaction. It will also be recognized 
that any other suitable ordering of operations or combinations of the authentication schemes may 
also be employed. 

[00102] In addition use of the claim terms includes any representation thereof For 
example the term sender authentication information includes the data itself, any index to the data, 
any reference or pointer to the data, or any other representation thereof 

[00103] Among other advantages, there need not be any modification to a message 
transfer agent or email client of a recipient. Also if desired, no recipient computers need to be 
registered allowing authentication to be performed firom any computer if desired. The system 
may also be applicable to mobile devices where lookup coordinates can be easily displayed on a 
small display screen. Other authentication purposes may include web authentication, interactive 
voice response authentication or any authentication scenario. In addition, the system and 
methods offer a type of inexpensive mechanism such as the authentication cards that can be 
distributed versus more complex technologies that may require smart cards, tokens or public key 
infrastructures. Other advantages will be recognized by those of ordinary skill in the art. 
[00104] The above detailed description of the invention and the examples described 
therein have been presented for the purposes of illustration and description and that other 
variations will be recognized by those in the art. For example, it will be recognized that the 
various operations described herein may be distributed in a network or non-network 
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configuration. For example, different operations of the authenticator or TIDM issuers or other 
operations may be performed by one or more third party web server(s) or other entities or 
devices. Other variation will also be recognized for the sender authentication apparatus and 
methods. 

[00105] It is therefore contemplated that the present invention cover any and all 
modifications, variations or equivalents that fall within the spirit and scope of the basic 
underlying principles disclosed above and claimed herein. 
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